CLAIMS 

Please amend Claims 1,10 and 1 5 as follows: 

1 . (Currently Amended) A security intrusion mitigation method comprising: 
utilizing network spanning tree configuration information to determine an 

action for mitigating diffusion of intrusive attacks between components associated 
with a network , wherein said spanning tree information includes an indication of an 
internal diffusion [[risks]] risk, wherein said internal diffusion risk is a risk of said 
attack diffusing from a first component associated with said network to a second 
component associated with said network : and 

performing said action for mitigating diffusion of intrusive attacks 
automatically, wherein said action for mitigating includes compensation for 
functional support of prioritized applications. 

2. (Original) A security intrusion mitigation method of Claim 1 further comprising 
utilizing said internal diffusion risk values to determine components forming a path in 
said spanning tree configuration with a highest cumulative diffusion impact risk. 

3. (Original) A security intrusion mitigation method of Claim 1 wherein said 
internal diffusion risk includes an asset value factor. 

4. (Original) A security intrusion mitigation method of Claim 3 wherein said asset 
value corresponds to an economic impact of a disruption to functionality provided by 
a network component. 

5. (Original) A security intrusion mitigation method of Claim 1 wherein said 
internal diffusion risk includes an exposure rating factor. 

6. (Original) A security intrusion mitigation method of Claim 5 wherein said 
exposure rating defines a threshold value corresponding to connectivity of a network 
component with other network components. 

7. (Original) A security intrusion mitigation method of Claim 5 wherein said 
network component is assigned an exposure rating value based upon a connectivity 
distance from a root node. 
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8. (Original) A security intrusion mitigation method of Claim 5 wherein said 
action for mitigating diffusion of intrusive attacks is implemented in accordance with 
a highest risk algorithm. 

9. (Original) A security intrusion mitigation method of Claim 5 wherein said 
network spanning tree configuration information includes information associated with 
components included in a utility data center and said mitigation action is 
implemented in said utility data center. 

1 0. (Currently Amended) A security intrusion mitigation system comprising: 
a means for communicating information; 

a means for processing [[said]] information including instructions for 
determining a highest risk path and automatically mitigating an attack from 
spreading between spr e ad to components included in said highest risk path; and 

a means for storing said information, including instructions for storing 
information describing said highest risk path d e term i n i ng a high o ct r i sk path n nd 
automat i ca ll y m i t i gating an attack spr e ad to compon o ntD i nc l uded i n said h i ghoot 
risk path . 

1 1 . (Original) A security intrusion mitigation system of claim 1 0 wherein said 
instructions include security management instructions implemented on a network 
application management platform. 

1 2. (Original) A security intrusion mitigation system of claim 1 0 further comprising 
a means for interfacing with a network application management platform. 

1 3. (Original) A security intrusion mitigation system of claim 1 0 wherein said 
instructions include attack spread risk determination instructions. 

1 4. (Original) A security intrusion mitigation system of claim 1 0 further comprising 
a means for centrally controlling a utility data center operations. 

1 5. (Currently Amended) A computer usable storage medium having computer 
readable program code embodied therein for causing a computer system to 
implement security intrusion mitigation instructions comprising: 
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a component risk determination module for determining a risk of an attack 
spreading from a first component to a second component included in a network; and 

an attack spreading response module for responding to said risk of [[an]] said 
attack spreading from [[a]] said first component to [[a]] said second component 
included in said network. 

16. (Original) A computer usable storage medium of Claim 1 5 wherein said risk is 
biased based upon an economic value of functions said second component 
performs. 

1 7. (Original) A computer usable storage medium of Claim 1 5 said risk is biased 
based upon connectivity of said second component to said first component in said 
network. 

18. (Original) A computer usable storage medium of Claim 1 7 wherein said 
response includes reducing traffic communication to said second component. 

19. (Original) A computer usable storage medium of Claim 1 5 wherein said 
response includes turning off an interface of said second component to said 
network. 

20. (Original) A computer readable medium of Claim 19 wherein said response is 
performed in accordance with an highest risk analysis. 
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